Detailed Information
Cited 1 time in 
Cited 1 time in 
Cited 1 time in
Metadata Downloads
Dynamic reencryption of return addresses
- Authors
- Lee, Hyungyu; Pyo, Changwoo; Lee, Gyungho
- Issue Date
- Jan-2019
- Publisher
- INST ENGINEERING TECHNOLOGY-IET
- Keywords
- cryptography; dynamic reencryption; return address; function returns; leaked return addresses
- Citation
- IET INFORMATION SECURITY, v.13, no.1, pp.76 - 85
- Journal Title
- IET INFORMATION SECURITY
- Volume
- 13
- Number
- 1
- Start Page
- 76
- End Page
- 85
- ISSN
- 1751-8709
- Abstract
- The authors present dynamic reencryption of return addresses to mitigate their leakage. The authors' method enforces programs to save return addresses as encrypted and renew the encryption states with fresh keys before or after vulnerable operations. When a function returns, it should restore the return address from its encryption using the most recent key not to cause a crash. Under the protection of their method, return addresses and keys may leak, but the disclosed bits become garbage because keys govern all return addresses through encryption, while changing before control-flow proceeds into a vulnerable region. As a result, it becomes probabilistically infeasible to build exploits for intercepting control-flow by using leaked return addresses or keys. They implemented the proposed method as an extension of the LLVM compiler that inserts reencryption code where necessary. They also have confirmed its effectiveness against information leak attacks carried out in the early stage of blind return-oriented programming (BROP). The performance overhead ranges below 11.6% for processor-intensive programs and 4.12% or less for web servers.
- Files in This Item
- There are no files associated with this item.
- Appears in
Collections - ETC > 1. Journal Articles
Items in ScholarWorks are protected by copyright, with all rights reserved, unless otherwise indicated.